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Description 

METHOD AND SYSTEM FOR CONTROLLING THE 

DISCLOSURE TIME OF INFORMATION 
Technical Field 

[001] This invention relates to die field of supply of information. In particular, this 
invention relates to controlling the disclosure tune of information. 

Background Art 

[002] Over recent years, there has been a huge increase in the volume of information 
published and distributed electronically. 

[003] The advent of the Internet and communication via e-mail means that information 
can be obtained and downloaded directly to an electronic device such as a computer or 
a mobile phone via communication means such as telephone networks. A high volume 
of information can be distributed quickly as long as there is available bandwidth 
capacity in the communication means. 

[004] Information can also be stored electronically on a storage medium such as a 

diskette or a CD-ROM and the storage medium can be distributed. A high volume of 
information can be transferred on a relatively small storage device. 

[005] In this way electronic devices operate to receive information bom in a connected 
and a disconnected environment The received information can then be stored on the 
electronic device itself for as long as the user requires the information. The term in- 
formation is used to encompass all types of data including as examples the following: 
documents; visual data such as still or moving images; audio data such as music, voice, 
etc. 

[006] Problems are faced when distributing information using electronic means wherein 
the information is only made available at a specific time. All the people wanting the in- 
formation win instantly try to download the data from the same source all at the same 
time. This can lead to overstretching of resources and subsequent delays. Also, offline 
users cannot access the information as quickly as connected users as they must wait for 
the information to be received on a storage device which must be physically 
transferred. 

[007] A distinction can be made between the distribution of information and the ability to 
access the information. For example, information may be sent electronically to a 
recipient as encrypted data. The information in the encrypted data can only be accessed 
by the recipient with a key such as a password to unlock the encrypted data. The time 
of access to the information can be governed by the issue of the key to the recipient 

[008] Controlling the time of the disclosure of information is important for time sensitive 
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material. For example, company accounts, results, reports and announcements may 
need to be disclosed after a certain time. Such documents may be large and distribution 
by electronic means may be economical and practical compared to more traditional 
means of distribution such as printed documents. 
[009] Cinema film distribution is another area in which the timed disclosure of in- 
formation would be beneficial. Currently a film for release is distributed on the release 
date via satellite communication. It would be beneficial to be able to send the 
encrypted film via a public IP network at any time prior to the release date so that 
advantage could be taken of downtime in the network communications avoiding 
congestion and delays. 

[010] Another business problem associated with the time of disclosure of information 
arises if a party wishes to provide proof to others that they knew of something before 
(he event, but could not disclose it immediately without business loss. Information 
could be sent in an encrypted form and disclosed at a later date. Proof is then provided 
that the sender had the information at a time before the disclosure time. 
Disclosure of Invention 

[01 1] The aim of the present invention is to provide a method and system for controlling 
the disclosure time of information. Information can be distributed and stored by a 
recipient prior to disclosure to the recipient. The invention makes use of public key 
cryptography. 

[012] The following is a brief summary of public key cryptography. Public key 

cryptography uses a pair of asymmetric related keys, one for encryption and the other 
for decryption. 

[013] In normal use, one of the key pair (the private key) is kept secret by the user, while 
the other key (the public key) can be publicly disclosed. The key pair must have the 
property that, given knowledge of the public key, it is infeasible to determine the 
private key. 

[014] A user receives or, with suitable hardware or software, can generate for itself a pair 
of keys which are generally two large numbers. In normal use, the user keeps one of 
these keys private and never discloses it The other key can safely be made public, just 
like a phone number or similar personal data. Public keys do not have to be published 
to the world. They can be shared as widely or narrowly as business and privacy re- 
quirements dictate. 

[015] Due to the way the keys are generated, information encrypted with the private key 
can only be decrypted with the public key and vice versa. Using a key pair means that 
the sender and receiver do not need to share a secret key. 

[016] The term "user" is defined as any entity including individuals, groups of in- 
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dividuals, one or more individuals in a role, corporations, organisations, computer ap- 
plications or systems, automated mai-iiin^ etc. 
[017] Conventional use of public key cryptography makes the following possible; 

• Anyone knowing a user's public key can send the user a message encrypted 
with that key and can be sure that only the user- who alone has the cor- 
responding private key - can decrypt it This provides confidentiality. 

• A riser migftt also encrypt a message with his private key. This cannot provide 
confidentiality, because anyone who knows the corresponding public key can 
decrypt it The fact that they can decrypt it means the message must have 
come from the user - who alone has the private key. This provides au- 
thentication and can also be used as a basis for non-repudiation - the digital 
equivalent of a signature. 

• If a sender signs a message with his own private key and then encrypts it with 
me recipient's public key, confidentiality, authentication and non-repudiation 
are provided together. 

[01 8] In a public key infrastructure, the user typically needs a certificate for his public 
key. This certificate tells those the user deals with that the public key really does 
identify the user. The public key certificate is issued by a reputable, trusted agency, 
such as a bank. 

[01 9] A problem arises if the user is dealing with a business associate who does not know 
the bank issuing the certificate certifying the public key of the user. The bank itself can 
have a public key certificate, issued by a suitable umbrella organisation. That umbrella 
organisation too can have a public key certificate. This can result in a chain of cer- 
tificates leading to a point (referred to as the root) which the business associate does 
know. Hie hierarchical chains of certificates ultimately end with a master organisation 
at the top of the hierarchical tree which has a self-signed certificate. This means that 
the public key of the self-signed certificate must be obtained by means outside the 
public key infrastructure system. 

[020] The means by which users can obtain the public key certificates they need, and be 
sure that those certificates are valid, is known as a public key infrastructure (PKI). 

[021] The present invention uses the principles and tools of public key cryptography to 
control the disclosure time of information. 

[022] According to a first aspect of the present invention there is provided a method for 
controlling the disclosure time of information by a publisher to one or more recipients 
comprising: a trusted body generating an asymmetrical key pair for a specified date 
and time of disclosure with an encryption key and a decryption key; the trusted body 
providing a digital certificate signed with a private key of the trusted body providing 
the publisher with the encryption key prior to the specified date and time; the publisher 
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using the encryption key to encrypt data; the recipient obtaining the encrypted data; 
and the trusted body making the decryption key available to the recipient at the 
specified dale and time. 

[023] Hie publisher may verify the signature on the digital certificate with the public key 
of the trusted body. 

[024] Preferably, the encryption key is a public key and the decryption key is a private 

key in a public key infrastructure. 
[025] The trusted, body may create an asymmetrical key pair for a specified date and time 

on demand from a publisher. 
[026] In one embodiment, the trusted body may generate one key pair for a specified date 

and time. 

[027] In an alternative embodiment, the trusted body may generate one or more key pairs 
for a specified date and time, generating a new key pair for each of a plurality of 
publishers. Each of the one or more publishers may have a password issued by the 
trusted body for preventing disclosure of the decryption key. 

[028] The decryption key may be encrypted with a public key and only recipients with 
the corresponding private key may obtain the decryption key. 

[029] According to a second aspect of the present invention there is provided a system 
for controlling the disclosure time of information comprising: a publisher; a trusted 
body; an asymmetrical key pair for a specified date and time of disclosure with an 
encryption key and a decryption key; a digital certificate signed with a private key of 
the trusted body providing the publisher with the encryption key prior to the specified 
date and time; and means for making the decryption key available at the specified date 
and time. 

[030] Preferably, the system includes one or more recipients with means for obtaining 
data encrypted with the encryption key from the publisher prior to the specified date 
and time and means for obtaining the decryption key at or after the specified date and 
time. 

[03 1] The certificate may include the specified date and time, the encryption key value, 
and the name of the trusted body. 

[032] Preferably, the encryption key is a public key and the decryption key is a private 
key in a public key infrastructure. 

[033] In one embodiment, there may be a single key pair for a specified date and time. In 
an alternative embodiment, mere may be a plurality of publishers and one or more key 
pairs for a specified date and time, a different key pair for each of the plurality of 
publishers for the specified date and time. Each of the plurality of publishers may have 
a password issued by the trusted body for preventing disclosure of the decryption key. 

[034) The decryption key may be encrypted with a public key and only recipients with 
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the corresponding private key may obtain the decryption key. 

[035] The trusted body may have one or more agents who act on behalf of the trusted 
body. An agent for the trusted body may be a smart card having an internal clock tor 
providing the decryption key to a recipient 

[0361 The trusted body may be accessible by the publisher and the recipients via a com- 
munication network. 

[037] According to a third aspect of the present invention there is provided a computer 
program product stored on a computer readable storage medium, comprising computer 
readable program code means for performing the steps of: generating an asymmetrical 
key pair for a specified date and time of disclosure with an encryption key and a 
decryption key; providing a digital certificate signed with a private key of the trusted 
body providing a publisher with the encryption key prior to the specified date and time. 

[038] According to a fourth aspect of the present invention there is provided a method for 
controlling the disclosure time of information by a publisher to one or more recipients 
comprising: a trusted body generating an asymmetrical key pair for a specified date 
and time of disclosure with an encryption key and a decryption key; the trusted body 
providing the publisher with the encryption key prior to the specified date and time; the 
publisher using the encryption key to encrypt data; the recipient obtaining the 
encrypted data; and the trusted body making the decryption key available to the 
recipient at the specified date and time; wherein the busted body generates one or more 
key pairs for a specified date and time, generating a new key pair for each of a plurality 
of publishers. 

[039] Each of a plurality of publishers may have a password issued by the trusted body 
for preventing disclosure of the decryption key for a specified date and time for that 
publisher. 

[040] The decryption key may be encrypted with a public key and only recipients with 
the corresponding private key may obtain the decryption key. 

Brief Description of the Drawings 

[041] Embodiments of the present invention will now be described, by way of examples 

only, with reference to the accompanying drawings in which: 
[042] Figure 1 is a diagram of a system in accordance with the present invention; 
[043] Figure 2 is a diagram of a certificate for use in accordance with the present 

invention; 

[044] Figure 3 A is a diagram of a system in accordance with the present invention at time 
T<T1; 

[045] Figure 3B is a diagram of the system of Figure 3A at time TTl ; 

[046] Figure 4 is a flow diagram of a method in accordance with the present invention; 
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and 

[047] Figure 5 is a diagram of a system in accordance with an embodiment of the present 
invention. 

Mode for the Invention 

[048] Referring to Figure 1 , there is provided a publisher 10 who wishes to distribute 

some information 11 to a plurality of recipients 12, 13, 14. The publisher 10 obtains an 
encryption key and distributes the information 1 1 in the form of encrypted data 15 to 
each of the recipients 12, 1 3,14. 

[049] A first recipient 1 2 obtains the encrypted data 1 5 by accessing a web site 1 6 of the 
publisher 10 on the Internet and downloading the encrypted data 15 to the recipient's 

* 

12 own computer. 

[050] A second recipient 13 receives a message 17 by e-mail from the publisher 10 
attaching a file of the encrypted data 15. 

[051] The first and second recipients 12, 13 are connected to the publisher 10 by a com- 
munication network 19 and are therefore part of an online community. 

[052] A third recipient 14 is disconnected in that he does not have e-mail or Internet 

access. The third recipient 14 is sent a CD-ROM 18 by the publisher 10 and the CD- 
ROM contains the encrypted data 15. 

[053] The above recipients 12, 13, 14 are token examples of the plurality of recipients 
and the encrypted data 15 can be distributed in its electronic form by any available 
means and via third parties. The recipients 12, 13, 14 receive and store the encrypted 
data 15 on any suitable electronic device, which may include a computer, a mobile 
phone, etc. 

[054] The encrypted data 15 cannot be accessed or read by the recipients 12, 13, 14 and 
therefore has not been disclosed to the recipients. At a time controlled by the publisher, 
a decryption key is made available to the recipients 12, 13, 14. The key enables the 
recipients 12, 13, 14 to access the information 11. 

[055] A trusted service is provided that manages and provides a public key infrastructure 
service. The trusted service publishes digital certificates for specific dates and times in 
the future. The digital certificates are certified by the trusted service by a signature 
using the trusted services private key. 

[056] The trusted service is publicly accessible, for example via a web site on the Internet 
or by e-mail access. The trusted service is itself certified by an umbrella organisation 
which ratifies the trusted service by providing a certificate of the trusted service's 
public key. The certificate is signed with the private key of the umbrella organisation. 
A chain of certificates may be provided with a root of the chain which is bootstrapped 
or confirmed by a means outside the public key infrastructure. 
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[057] Referring to Figure 2, a digital certificate 20 is shown. The digital certificate 20 

contains certificate information 21. The certificate information 21 includes the subject 
22 of the certificate 20 which is the date and time, apublic key value 23 for the date 
and time and the name 24 of the trusted service issuing the certificate. A digital 
signature 25 is generated using the certificate information 21 by encrypting the 
certificate information 21 with the private key 26 of the trusted service. The digital 
signature 25 is inserted in the digital certificate 20. 

[058] A publisher wishing to disclosure information at a given future date and time 

approaches the trusted service and requests a public key 23 for the given date and time. 
For example, a publisher may ask the trusted service for a public key for 22 April 2003 
at lO.OOhr. The trusted service will issue a randomly generated certified digital 
certificate 20 which contains the public key 23. 

[059] r Providing the public key 23 which is to be used for encryption in the form of a 
certificate from the trusted service enables the users to trust that the corresponding 
private key is to be released at the given time. Also, the security provided by a 
certificate prevents an impostor from posing as a trusted service and issuing a public 
key and then-rrablishing the private key before time or not at all. 

[060] The publisher 1 0 may now take the information 1 1 which he wishes to distribute 
and encrypt it using the public key 23 which has been provided by the trusted service 
for the date and time of 22 April 2004, lO.OOhr. The encrypted data 15 can then be 
distributed as discussed in relation to Figure 1. Recipients 13, 14, 15 who wish to 
receive the information 1 1 can then obtain the encrypted data 15 any time before 22 
April 2004, lO.OOhr; however, the recipients 13, 14, 15 cannot decrypt the encrypted 
data 1 5 as they do not have the private key corresponding to the public key 23. 

[061] At the given date and time; in this example 22 April 2004, lO.OOhr, the trusted 

service makes the private key available. For example, the trusted service may publish 
the private key on a web site or may provide it by e-mail in response to a request The 
recipients can obtain the private key from the trusted service and they can then decrypt 
the encrypted data 15 and access the information 11. 

[062] The trusted service can make the private key available in a digital certificate signed 
by the trusted service. Before the time of disclosure, the trusted service issues digital 
certificates 20 as shown in Figure 2 containing the public key value 23. After the time 
of disclosure the trusted service can issue the digital certificate with both the public 
key value 23 and the corresjxmding private key value. 

[063] The trusted service may operate via the Internet and proxies and system caches can 
be used to reduce the burden on the main site as recipients demand the private key. The 
private key is relatively small in size and therefore quick to distribute at the given time. 
In this way, the recipients are all able to access the information 1 1 very soon after the 
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given date and time ensuring that all recipients have the same ability to access the in- 
formation 11 promptly after the given time. 

[064] Figures 3A and 3B show the transfers of the public and private keys between the 
parties. Figure 3A is at a time, T, any time before a specific time Tl , i.e.T<Tl. Figure 
3B is at a time, T, any time at or after the specific time Tl , i.e. TTl. 

[065] In Figures 3A and 3B there is shown a publisher 10 and four recipients 31. There is 
also shown a trusted service 30. In Figure 3A, the publisher 10 obtains a public key 32 
from the trusted service 30 at some time before a specific time, Tl. The publisher 10 
wants some information to be disclosed to the recipients 31 at the specific time Tl . The 
publisher 10 encrypts the information and the recipients 31 obtain the encrypted in- 
formation 15 from the publisher 10 at any time once the information has been 
encrypted. The recipients 31 may obtain the encrypted information 15 at different 
times. 

[066] Figure 3B shows the same publisher 10 and recipients 31 as in Figure 3A but after 
time Tl. The recipients 3 1 each obtain the private key 34 corresponding to the public 
key 32 of Figure 3A from the trusted service 31. The recipients 31 can each then 
decrypt the encrypted information 15 which they obtained prior to time Tl. 

[067] Figure 4 is a flow diagram showing the actions of a publisher and a single 

recipient Figure 4 shows time, T, progressing towards the bottom of the page with the 
specific time Tl shown in relation to the actions. At box 41 a publisher obtains a 
public key for encrypting some information which the publisher wishes to disclose at 
or after time Tl . The publisher encrypts 42 the information and the encrypted in- 
formation is made available 43 to recipients. At box 44, a recipient X obtains the 
encrypted information and stores it, awaiting time Tl . At time Tl , the private key 
becomes available for decrypting the encrypted information. At box 46 the recipient X 
obtains the private key and the recipient X decrypts 47 the in formation. 

[068] For recipients who do not have online access but wish to access the information at 
the given date and time, the key may be supplied in advance by the trusted service on a 
time based smart card which would ensure that the private key only becomes available 
after the specific time. A smart card would be provided with an internal clock and 
power means, for example a battery. The trusted service would activate the clock and 
program the card with the private key to be disclosed at a given time. The key would 
automatically become available on the smart card when the clock reached the given 
time. 

[069] Similarly, the private key could be provided on a data storage means which when 
inserted into a computer reacts to a computer's internal clock to release the key at the 
given time. The clock must be a trusted time-keeper or have access to a trusted time 
server. A trusted time-keeper will sign a digital certificate for a current time. 
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[070] The trusted service may have one or more agents which are trusted to perform the 
job of disclosing the private key. 

[071] In a first embodiment of the described method and system, the trusted service 
provides a single key for each date and tune. The keys are created on demand. 
Therefore, when a first publisher requests a key for a specific date and time, Tl, the 
trusted service creates a public/private key pair for that time. If a second publisher also 
requests a key tor time Tl , the same key pair is used and the same public key is 
provided to the second publisher as was provided to the first publisher. In this way, 
only the exact number of key pairs tor the times required is created. No redundant keys 
are created and stored by the trusted service or its agents thereby reducing overheads. 

[072] More than one publisher can safely use the same public key for encryption as the 
publishers only have the public key and cannot therefore decrypt information 
encrypted by another publisher using the same public key. The publishers cannot 
obtain the corresponding private key until it is issued by the trusted service at the 
specified time. 

[073] The table shown below illustrates the private keys as they would be published by 
the trusted service. One key is provided tor each date and time for which a key has 
been requested. 



DATE, TIME 


DECRYPTION KEY (PRIVATE KEY) 


22 April 2004, 10.00 


JK6 


, , J7A 


22 April 2004, 16.50 


7LI 


, ,.7YT 


23 April 2004, 09.00 


JU9 


. ,. W2L 


25 April 2004, 14.00 


5TN 


MNW 



[074] In a second embodiment, the trusted service creates additional keys tor each 

publisher who wishes to publish at a specific time. A first publisher may request a key 
for date and time T2 and the trusted service creates a key pair and issues the public key 
to the first publisher. If a second publisher requests a key for the same date and time 
T2, the trusted service creates a second key pair and issues the public key of the second 
key pair to the second publisher. At time T2, the trusted service publishes both the 
private keys of the key pairs created for time T2. 

[075] The second embodiment has the advantage that a publisher can stop disclosure of 
information which has already been distributed in its encrypted form before it is 
disclosed at time T2. This can be done by the publisher informing the trusted service 
that the private key is not to be disclosed. As the key pair is unique to a single 
publisher, the publisher can dictate if the private key is disclosed or not without 
affecting any other disclosures taking place at the same time. A password can be used 
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[076] 



for validating the publisher* s identity when instructing the trusted service not to 
publish a private key. The password would be issued to the publisher with the public 
key in the certificate from the trusted service. Passwords would be securely distributed 
using the public key infrastructure. 

The table shown below illustrates the private keys as they would be published by 
the trusted service for the second embodiment More than one private key may be 
provided for each date and time for which a key has been requested with each private 
key identified by the publisher to which it relates. 



TIME 

22 April 2004, 10.00 
22 April 2004, 10.00 
25 April 2004, 14.00 
25 April 2004, 14.00. 

25 April 2004, 14.00 

26 April 2004, 08.00 



PUBLISHES 

Publisher P 
Publisher Q 
Publisher A 
Publisher B 
Publisher C 
Publisher Z 



DECRYPTION KEY 
(PRIVATE KEY) 

RT8 ZS4 

TOR JBN7 

90F JCK2 

YC3 6DW 

8ES L4G 

160 -V3M 



[077] 



[078] 



[079] 



In a third embodiment, which may be used in combination with the second 
embodiment described above, the distribution of the private key is limited to a pre- 
defined audience. A key pair may be created for time T3 for publisher P and a public 
key issued to publisher P. The private key is only made available, after time T3, to a 
pre-defined audience of recipients. This can be achieved by the trusted service 
encrypting the private key for time T3 with a public key of a key pair. Only the pre- 
defined audience of recipients will hold the corresponding private key. 

For example, IBM employees may all be issued with the same private key for IBM 
confidential disclosures. If information is to be distributed at time T3 to the employees 
of IBM but is not to be generally disclosed outside the group of the employees of IBM, 
the private key fortune T3 is encrypted with the public key corresponding to the 
private key for IBM employees. In this way, the open Internet may be used to transfer 
information which is confidential to a given group or set of recipients and which is to 
be disclosed at a given date and time in the future. 

Figure 5 illustrates the third embodiment described above. A publisher 10 wishes 
to publish a document 1 1 at time Tl. The publisher 10 obtains a Tl public key 32 for 
time Tl from a trusted service 30. The trusted service 30 sends the publisher 10 a 
certificate 20 which contains the Tl public key 32. The certificate 20 is signed with the 
trusted service's private key 26. The certificate 20 may also contain a password 50 for 
the publisher 10 to use if the publisher 10 wishes to withdraw the publication before 
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timeTl. 

[080] The publisher 10 optionally checks the signature of the trusted service 30 by using 
the trusted service's public key 51. The publisher 10 encrypts the document 1 1 with 
the Tl public key 32 resulting in an encrypted document 15. 

[081] A recipient 31 obtains 52 the encrypted document 15 from the publisher 10. The 
recipient 31 in this example is one of a group of IBM authorised personnel who has an 
IBM private key 53. The IBM authorised personnel are a group who are authorised to 
have access to a particular category of information and documents which includes 
document 11. 

[082] After time Tl, the recipient 31 obtains 54 the Tl private key 34 from the trusted 
service 30. The Tl private key 34 is encrypted with the IBM public key 55 which 
corresponds to the IBM private key 53. The encrypted Tl private key 34 may 
optionally be provided in a certificate from the trusted service 30. 

[083] The recipient 31 decrypts the Tl private key 34 using the IBM private key 53. The 
recipient 3 1 can then decrypt the encrypted document 15 using the Tl private key 34 to 
access the document 11. 

[084] In this way, a document can be distributed to a selected group of recipients ahead 
of its disclosure at a specified date and time. The distribution can be made via the 
public Internet or by other online or offline means at a time to suit each of the 
recipients. As die publisher has a password associated with the public key used for 
encryption, the publisher can withdraw the disclosure of the information before the 
disclosure date even after the encrypted information has been received by the 
recipients. 

[085] For the implementation of the system by the recipients, a client application is 

required to obtain, decrypt and launch media. This may be in the form of a plug-in or 
client side application. 

[086] The disclosed system has numerous uses in which the disclosure of information is 
time sensitive including software update issues, corporate publications, government/ 
press releases to agencies, music releases to radio stations, Dutch auctions, film dis- 
tribution, etc. 

[087] The concept of a trusted time-keeper introduced herein can also be used as a means 
of providing proof of ownership of a document at a given time. A trusted time-keeper 
can sign the document with the current time which is certified by the time-keeper. 

[088] Aspects of the present invention are typically implemented as computer program 
products, comprising a set of program instructions for controlling a computer of 
similar device. These instructions can be supplied preloaded into a system or recorded 
on a storage medium such as a CD-ROM, or made available for downloading over a 
network such as the Internet or a mobile telephone network- 
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[089] Improvements and modifications can be made to the foregoing without departing 
from the scope of the present invention. 
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Claims 

A method for controlling the disclosure time of information by a publisher (10) 
to one or more recipients (31) comprising: a trusted body (30) generating an 
asymmetrical key pair for a specified date and time of disclosure with an 
encryption key (32) and a decryption key (34); the trusted body (30) providing a 
digital certificate (20) signed with aprivate key (26) of the trusted body (30) 
providing the publisher (10) with the encryption key (32) prior to the specified 
date and time; the publisher (10) using the encryption key (32) to encrypt data 
(15); the recipient (31) obtaining the encrypted data (15); and the trusted body 
(30) making the decryption key (34) available to the recipient (31) at the 
specified date and time. 

4 

A method as claimed in claim 1, wherein the publisher (31) verifies the signature 
(25) on the digital certificate (20) with the public key of the trusted body (30). 
A method as claimed in claim 1 or claim 2, wherein the encryption key (32) is a 
public key and the decryption key (34) is a private key in a public key in- 
frastructure. 

A method as claimed in any one of claims 1 to 3, wherein the trusted body (30) 
creates an asymmetrical key pair for a specified date and time on demand from a 
publisher (10). 

A method as claimed in any one of the preceding claims, wherein the trusted 
body (30) generates one key pair for a specified date and time. 
A method as claimed in any one of claims 1 to 4, wherein the trusted body (30) 
generates one or more key pairs for a specified date and time, generating a new 
key pair for each of a plurality of publishers (10). 

A method as claimed in claim 6, wherein each of the one or more publishers (10) 
has a password (50) issued by the trusted body (30) for preventing disclosure of 
the decryption key (34). 

A method as claimed in any one of the preceding claims, wherein the decryption 
key (34) is encrypted with a public key (55) and only recipients (31) with the 
corresponding private key (53) can obtain the decryption key (34). 
A system for controlling the disclosure time of information comprising: a 
publisher (10); a trusted body (30); an asymmetrical key pair for a specified date 
and time of disclosure with an encryption key (32) and a decryption key (34); a 
digital certificate (20) signed with a private key (26) of the trusted body (30) 
providing the publisher (10) with the encryption key (32) prior to the specified 
date and time; and means for making the decryption key (34) available at the 
specified date and time. 
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A system as claimed in claim 9, including one or more recipients (31) with 
means for obtaining data (15) encrypted with the encryption key (32) from the 
publisher (10) prior to the specified date and time and means tor obtaining the 
decryption key (34) at or after the specified date and time. 
A system as claimed in claim 9 or claim 10, wherein the certificate (20) includes 
the specified date and time, the encryption key value (32), and the name of the 
trusted body (30). 

A system as claimed in any one of claims 9 to 11, wherein the encryption key 
(32) is a public key and the decryption key (34) is a private key in a public key 
infrastructure. 

A system as claimed in any one of claims 9 to 12, wherein there is a single key 
pair for a specified date and time. 

A system as claimed in any one of claims 9 to 12, wherein there is a plurality of 
publishers (1 0) and one or more key pairs for a specified date and time, a 
different key pair for each of the plurality of publishers (10) for the specified 
date and time. 

A system as claimed in claim 14, wherein each of the plurality of publishers (10) 
has a password (50) issued by the trusted body (30) for preventing disclosure of 
the decryption key (34). 

A system as claimed in any one claims 9 to 15, wherein the decryption key (34) 
is encrypted with a public key (55) and only recipients (31) with the cor- 
responding private key (53) can obtain the decryption key (34). 
A system as claimed in any one of claims 9 to 16, wherein the trusted body (30) 
has one or more agents who act on behalf of the trusted body (30). 
A system as claimed in claim 17, wherein an agent for the trusted body (30) is a 
smart card having an internal clock for providing the decryption key (34) to a 
recipient (31). 

A system as claimed m any one of claims 10 to 18, wherein the trusted body (30) 
is accessible by the publisher (10) and the recipients (31) via a communication 
network. 

A method for controlling the disclosure time of information by a publisher (10) 
to one or more recipients (31) comprising: a trusted body (30) generating an 
asymmetrical key pair for a specified date and time of disclosure with an 
encryption key (32) and a decryption key (34); the trusted body (30) providing 
the publisher (10) with the encryption key (32) prior to the specified date and 
time; the publisher (10) using the encryption key (32) to encrypt data (15); the 
recipient (31) obtaining the encrypted data (15); and the trusted body (30) 
making the decryption key (34) available to the recipient (31) at the specified 



WO 2004/114197 



PCT/EP2004/050847 



15 



[022] 



[023] 



date and time; wherein the trusted body (30) generates one or more key pairs for 
a specified date and time, generating a new key pair for each of apluralhy of 
publishers (10). 

[021] A method as claimed in claim 20, wherein each of a plurality of publishers (10) 

has a password (50) issued by the trusted body (30) for preventing disclosure of 
the decryption key (34) for a specified date and time for that publisher (10). 
A method as claimed in claim 20 or claim 21, wherein the decryption key (34) is 
encrypted wife a public key (55) and only recipients (31) with the corresponding 
private key (53) can obtain the decryption key (34). 
A computer program product directly loadable into the internal memory of a 
digital computer, composing software code portions for perfbrmmg the steps of 
any one of claim 1 20 to claim 8 22 when said product is run on a computer. 
[024] An information distributing service for controlling the disclosure time of in- 

formation by a publisher (10) to one or more recipients (31) comprising: a trusted 
body (30) generating an asymmetrical key pair for a specified date and time of 
disclosure with an encryption key (32) and a decryption key (34); the trusted 
body (30) providing a digital certificate (20) signed with a private key (26) of the 
trusted body (30) providing the publisher (10) with the encryption key (32) prior 
to the specified date and time; the publisher (10) using the encryption key (32) to 
encrypt data (15); the recipient (31) obtaining the encrypted data (15); and the 
trusted body (30) making the decryption key (34) available to the recipient (31) 
at the specified date and time. 
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